- import_playbook: "/srv/web/infra/ansible/playbooks/include/virt-create.yml"
  vars:
    myhosts: batcave

- name: make the box be real
  hosts: batcave
  user: root
  gather_facts: True

  vars_files:
   - /srv/web/infra/ansible/vars/global.yml
   - "/srv/private/ansible/vars.yml"
   - /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml

  roles:
  - base
  - rkhunter
  - nagios_client
  - hosts
  - openvpn/client
  - ipa/client
  - ansible-server
  - sudo
  - collectd/base
  - role: git/hooks
  - rsyncd
  - apache
  - httpd/mod_ssl
  - role: httpd/certificate
    certname: "{{wildcard_cert_name}}"
    SSLCertificateChainFile: "{{wildcard_int_file}}"
  - role: rabbit/user
    username: "batcave{{ env_suffix }}"
    sent_topics: ^org\.fedoraproject\.{{ env_short }}\.(ansible|git|infragit|logger)\..*
  - role: rabbit/queue
    username: "mirror_pagure_ansible{{ env_suffix }}"
    queue_name: "mirror_pagure_ansible{{ env_suffix }}"
    routing_keys:
    - "io.pagure.*.pagure.git.receive"
    thresholds:
      warning: 10
      critical: 100
    sent_topics: ^$
  - role: rabbit/queue
    username: "mirror_pagure_ansible{{ env_suffix }}"
    queue_name: "mirror_pagure_ansible{{ env_suffix }}_13"
    routing_keys:
    - "io.pagure.*.pagure.git.receive"
    thresholds:
      warning: 10
      critical: 100
    sent_topics: ^$
    when: datacenter != 'iad2'
  - batcave
  - role: grobisplitter
    when: datacenter == 'iad2'
  - { role: nfs/client, when: inventory_hostname.startswith('batcave'), mnt_dir: '/srv/web/pub',  nfs_src_dir: 'fedora_ftp/fedora.redhat.com/pub' }
  - { role: nfs/client, when: inventory_hostname.startswith('batcave01'), mnt_dir: '/mnt/fedora/app',  nfs_src_dir: 'fedora_app/app' }
  - { role: mirror_pagure_ansible, tags: ['mirror_pagure_ansible'] }

  pre_tasks:
  - import_tasks: "{{ tasks_path }}/yumrepos.yml"

  tasks:
  - import_tasks: "{{ tasks_path }}/motd.yml"

  handlers:
  - import_tasks: "{{ handlers_path }}/restart_services.yml"
